As if we all don’t have enough to think (or worry) about with the COVID-19 pandemic, now we have to be even more concerned than ever about cybersecurity. This is especially true for today’s hospitals, as they are ideal targets for hackers and scammers worldwide. Cybercriminals know that these facilities are so focused on patient care and the need for supplies that they may be letting their guard down a bit, inadvertently opening the door to phishing scams, ransomware attacks, and other malicious activities. And, it appears these criminals are taking advantage of every opportunity.
According to HealthcareITNews.com, “Scams by so-called gray-marketers for personal protective equipment (PPE) have been increasing steadily as healthcare professionals face shortages of critical supplies.” Further, “The FBI has issued a warning about Kwampirs malware targeting supply chains including the healthcare industry.” Kwampirs is a backdoor Trojan that grants remote computer access to attackers.
Tech-giant Microsoft® is also warning hospitals to watch out for sophisticated ransomware attacks that could target them through their VPNs and other network devices. The company specifically singled out the ransomware campaign REvil, also known as Sodinokibi, which actively exploits gateway and VPN vulnerabilities to gain a foothold in target organizations. “Following a successful exploitation, attackers can then steal credentials, elevate their privileges and move laterally across compromised networks, installing ransomware or other malware payloads,” says HealthcareITNews.com.